Authentication Guide for IBM DB2
In DB2, user and group authentication is performed by a facility that is external to the DB2 database management system, such as the operating system, a domain controller, or a Kerberos security system. It is accomplished using dynamically loadable libraries called security plug-ins.
The default IBM DB2 username/password plug-in authenticates users only in an NIS domain or in the /etc/passwd password file. If another security plug-in has not been explicitly configured, the user credentials provided in the connection request are authenticated by the security facility on the DB2 Universal Database (UDB) server. That is, the default plug-in sends the user ID and password to the operating system for validation.
About Verify Privilege Server Suite DB2
DirectControl for DB2 extends the Authentication Service to DB2 database instances. This solution allows you to use Microsoft Active Directory as the central authentication and access control data store in a heterogeneous environment that contains both Windows and UNIX computers as well as DB2 relational database management systems.
For more information about IBM Security, see IBM Security Announcement.
IBM Security software is protected by U.S. Patents 7,591,005; 8,024,360; 8,321,523; 9,015,103; 9,112,846; 9,197,670; 9,378,391 and 9,442,962. (Ref: CS-44575)
Contents
Authentication and Authorization in DB2
Install and Configure the Server
Next Step: